No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>


To have a better experience, please upgrade your IE browser.


Preventing User Passwords from Being Expired in FusionAccess V100R005

Publication Date:  2015-03-05 Views:  731 Downloads:  0
Issue Description
By default, user passwords expire after a specified period of time. If a password expires, service provisioning on the FusionAccess portal fails and a large number of alarms, such as AD service abnormal and DNS service abnormal, are generated.
Handling Process
Step 1 Log in to the AD server.
1. Log in to the AD server using VNC.
2. Enter the domain account and password, and click .
Step 2 Set group policies.
1. Choose Start > Administrative Tools > Group Policy Management.
The Group Policy Management window is displayed.
2. In the navigation tree, expand Group Policy Management > Forest:Domain name > Domains > Infrastructure domain name > Group Policy Objects.
3. Right-click Default Domain Policy and choose Edit.
The Group Policy Management Editor window is displayed.
4. In the navigation tree, expand Computer Configuration > Policies > Windows settings > Security Settings > Account Settings > Password policy.
The policy list is displayed in the right pane.
5. Right-click Maximum password age and choose Properties.
6. Select Define this policy setting, enter 0 in Password will expire in, and click OK.

7. Click OK in the dialog box displayed.
Step 3 Update the policies.
1. Choose Start, enter cmd in Search programs and file, and press Enter.

2. Run the gpupdate /force command.
The policies are successfully updated if the following information is displayed:
Updating policies…

User policies updated successfully.
Computer policies updated successfully.
Root Cause
If the password of a domain administrator has expired, the connection between FusionAccess and AD will be interrupted. If the Tomcat logon account password has expired, the ITA cannot monitor the status of other components, such as the DNS and Loggetter.
If the password of a user account has expired, refer to the section "Account Management" in the FusionCloud Desktop (Standard) V100R005C10 System Management Guide 01.pdf.
 The other components will synchronize policies from the AD. The synchronization time varies depending on the AD synchronization mechanism.
 To enable new policies to be synchronized immediately, restart the server.